Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Campaigns

20 articles

Security Affairs Campaigns May 15

Ghostwriter group resumes attacks on Ukrainian Government targets

ESET uncovered new Ghostwriter (aka FrostyNeighbor) activity targeting Ukrainian government organizations in a campaign active since March 2026. ESET researc...

Security Affairs →

GBHackers Campaigns Microsoft May 15

Tycoon 2FA Operators Use OAuth Device Code Phishing to Bypass MFA

A new phishing campaign uncovered in late April 2026 shows how threat actors behind the Tycoon 2FA Phishing-as-a-Service (PhaaS) kit are evolving beyond trad...

T1566 T1078

GBHackers →

Infosecurity Magazine Campaigns May 15

China-Linked Hackers Deploy New TencShell Malware Against Global Manufacturer

A suspected China-linked threat actor targeted the Indian branch of a global manufacturer leveraging an open source offensive toolkit

Infosecurity Magazine →

GBHackers Campaigns Microsoft May 15

Microsoft Exposes Kazuar Malware’s Modular P2P Botnet Architecture

Microsoft has revealed new technical insights into Kazuar, a long-running malware linked to the Russian state-backed group Secret Blizzard, highlighting its ...

GBHackers →

SC Media Campaigns Cisco May 15

Fake job interviews used to deploy JobStealer malware

The campaign involves scammers posing as recruiters and inviting victims to online interviews via custom platforms that mimic legitimate services like Cisco ...

SC Media →

The Record Campaigns Apple May 14

OpenAI asks macOS users to update after TanStack npm supply chain attack

The actions are being taken in light of an expanding supply chain campaign impacting the popular open-source library TanStack and additional npm and PyPI pac...

T1195

The Record →

Infosecurity Magazine Campaigns May 14

Mustang Panda Linked to Updated FDMTP Backdoor in Asia-Pacific Espionage Campaign

Mustang Panda campaign deploys updated FDMTP backdoor against Asia-Pacific and Japan networks

Infosecurity Magazine →

Microsoft Security Blog Campaigns Microsoft May 14

Kazuar: Anatomy of a nation-state botnet

Kazuar, a sophisticated malware family attributed to the Russian state actor Secret Blizzard, has been under constant development for years and continues to ...

Microsoft Security Blog →

SC Media Campaigns May 14

Cofense unveils AI-driven platform to combat polymorphic phishing campaigns

The company's latest offerings focus on campaign-level responses rather than individual email analysis. Vision 3.

T1566

SC Media →

The Hacker News Campaigns May 14

Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike

The Belarus-aligned threat group known as Ghostwriter has been attributed to a fresh set of attacks targeting governmental organizations in Ukraine. Active s...

T1566

The Hacker News →

GBHackers Campaigns May 14

TeamPCP, BreachForums Launch $1K Supply-Chain Attack Contest

A new cybercrime campaign is turning supply chain attacks into a public competition, as TeamPCP and BreachForums operators launch a $1,000 contest that encou...

T1195

GBHackers →

GBHackers Campaigns May 14

Sandworm Hackers Shift From IT Breaches to Critical OT Targets

A new wave of cyber activity linked to the notorious Sandworm group is raising fresh alarms across global critical infrastructure. Security researchers warn ...

T1598

GBHackers →

CSO Online Campaigns Oracle GitHub May 14

FlowerStorm phishing gang adopts virtual-machine obfuscation to evade email defenses

A widely active phishing-as-a-service (PhaaS) operation known as FlowerStorm has begun using a browser-based virtual machine to conceal credential theft code...

T1566 T1078 T1027

CSO Online →

Help Net Security Campaigns May 14

Cofense adds AI-powered campaign detection to stop phishing attacks

Cofense has announced new advancements to its Phishing Defense Platform aimed at improving detection and response to AI-powered phishing attacks. The updates...

T1566

Help Net Security →

Security Affairs Campaigns May 14

FamousSparrow targets Azerbaijani energy sector in multi-wave espionage campaign

Chinese-linked FamousSparrow repeatedly targeted an Azerbaijani oil and gas company, reusing the same entry point in three intrusions from Dec 2025 to Feb 2026.

Security Affairs →

GBHackers Campaigns Intel May 14

Seedworm APT Abuses Signed Binaries for DLL Sideloading

Seedworm also known as MuddyWater, Temp Zagros, and Static Kitten is widely attributed to Iran’s Ministry of Intelligence and Security (MOIS). An Iran-linked...

GBHackers →

BleepingComputer Campaigns May 13

Iranian hackers targeted major South Korean electronics maker

The Iran-linked hacking group MuddyWater (a.k.

BleepingComputer →

SC Media Campaigns May 13

Operation SilentCanvas: Attackers use .jpeg files to deliver malware

Attackers are weaponizing .jpeg files to deliver PowerShell payloads, trojanize ScreenConnect, and establish persistence on target systems.

T1059.001

SC Media →

The Hacker News Campaigns Microsoft May 13

Azerbaijani Energy Firm Hit by Repeated Microsoft Exchange Exploitation

A threat actor with affiliations to China has been linked to a "multi-wave intrusion" targeting an unnamed Azerbaijani oil and gas company between late Decem...

The Hacker News →

GBHackers Campaigns May 13

ClickFix Evolves Using Decade-Old Open-Source Python SOCKS5 Proxy

A newly observed ClickFix campaign is pushing beyond simple user-triggered infections, introducing a more persistent and stealthy intrusion chain using PySox...

T1059.001

GBHackers →

«Previous page 1 ... 22 23 24 25 26 ... 31 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA